2768b03b361894e2cd7a23e43a1c23c3fa01e6c459dd3aa502171afc8e904aed | Triage

Sharing

General

Target

2768b03b361894e2cd7a23e43a1c23c3fa01e6c459dd3aa502171afc8e904aed
Size

320KB
Sample

221123-kkh1aacf2t
MD5

bafe5e7a50092fdfef71e17b23e5dba4
SHA1

e762076e4946e26288b901724b3c6eb051905e75
SHA256

2768b03b361894e2cd7a23e43a1c23c3fa01e6c459dd3aa502171afc8e904aed
SHA512

6011a7a180cf3d62c8113e283f849009333874ef1fd122a919e4962483dbc63b8150f8ad93191ac09bde25fda10e92b26d251ccbeecd10b687bc1b9b6103cbbd
SSDEEP

6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTstA:prVtkuveY3aEHF7lLIpkHkA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2768b03b361894e2cd7a23e43a1c23c3fa01e6c459dd3aa502171afc8e904aed
- Size
  
  320KB
- MD5
  
  bafe5e7a50092fdfef71e17b23e5dba4
- SHA1
  
  e762076e4946e26288b901724b3c6eb051905e75
- SHA256
  
  2768b03b361894e2cd7a23e43a1c23c3fa01e6c459dd3aa502171afc8e904aed
- SHA512
  
  6011a7a180cf3d62c8113e283f849009333874ef1fd122a919e4962483dbc63b8150f8ad93191ac09bde25fda10e92b26d251ccbeecd10b687bc1b9b6103cbbd
- SSDEEP
  
  6144:prORTyv4bo0jy7bobUzkuvcBYC47l2xYuM4EHHrB7lkqR5dUzEmprgF7lTstA:prVtkuveY3aEHF7lLIpkHkA
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2